Legal claims defining the scope of protection. Each claim is shown in both the original legal language and a plain English translation.
1. A method for managing transmission characteristics for inbound data communications received by a first network site from a remote second network site via a data communications path over a wide area data communications network, the method comprising: determining one or more inbound protocol overhead factors based on overhead associated with one or more network protocols applied to the inbound data communications over at least a first link of the data communications path, wherein the data communications path consists of a series of links through the wide area data communications network, wherein the first link is between a first node device serving as an entry point of the first network site and a second node device serving as an exit point from a public portion of the wide area data communications network and located remotely from the first network site and from the second network site, and wherein the inbound data communications are received by the first node device of the first network site via the first link; determining one or more inbound link throughput limits configured to control throughput of data packets of the inbound data communications over at least the first link, wherein at least one of the one or more inbound link throughput limits is/are determined based on at least one of the one or more inbound protocol overhead factors; and transmitting the one or more inbound link throughput limits to the second network site for application to transmission of the data packets of the inbound data communications from the second network site.
A method for optimizing data transfer from a remote server to a local network. The local network calculates protocol overhead (like TCP/IP headers) on the data path's initial connection. The data path consists of a series of links through the wide area network (WAN). It determines the data limits based on the protocol overhead. The method then transmits these optimized data limits back to the remote server. The server uses these limits to shape data transmission, ensuring efficient bandwidth usage on the first link, improving quality of service by preventing network congestion.
2. The method according to claim 1 , wherein the data packets of the inbound data communications are secured via a virtual private network (VPN) tunnel between the first network site and the second network site, wherein the series of links of the data communications path carry the data packets of the VPN tunnel, and wherein the transmission of the inbound link throughput limits to the second network site occurs via the VPN tunnel.
The method described above adds VPN security between the remote server and local network. All data packets are sent via a VPN tunnel across the data path's links. The optimized data limits calculated by the local network are sent to the remote server using that same secure VPN tunnel. This ensures that the quality of service settings are transmitted securely along with the protected data.
3. The method according to claim 2 , wherein the VPN tunnel is based on Internet protocol security (IPSEC) protocol, and the one or more inbound protocol overhead factors include IPSEC encapsulation.
In the VPN setup described previously, the VPN uses IPSEC protocol. The overhead calculation now includes IPSEC encapsulation. The local network calculates the extra overhead introduced by IPSEC and adjusts the data limits accordingly, then transmits the updated limits via the IPSEC tunnel.
4. The method according to claim 3 , further comprising: receiving the inbound link throughput limits transmitted to the second network site; transmitting the data packets of the inbound data communications to the first network site; and controlling the transmission of the data packets of the inbound data communications based on the received inbound link throughput limits.
The method now includes the server receiving the optimized data limits. The server then transmits data packets according to those limits. The second network controls the transmission of data packets based on the received inbound link throughput limits. This enables the remote server to actively manage its sending rate, adhering to the constraints imposed by the local network's calculations and preventing congestion.
5. The method according to claim 4 , wherein the data packets of the inbound data communications are secured via a virtual private network (VPN) tunnel between the first network site and the second network site, at least one of the one or more inbound protocol overhead factors is/are based on overhead associated with a security protocol applied to the data packets of the inbound data communications, and wherein the series of links of the data communications path carry the data packets of the VPN tunnel.
In the method described in claim 4, VPN security is used between the remote server and the local network. Data packets are sent via a VPN tunnel. The overhead calculation now accounts for VPN protocol overhead. The links of the data path carry the VPN data packets.
6. The method according to claim 5 , wherein the VPN tunnel is based on Internet protocol security (IPSEC) protocol, and the one or more inbound protocol overhead factors include IPSEC encapsulation.
In the VPN setup described previously, the VPN uses IPSEC protocol. The overhead calculation now includes IPSEC encapsulation overhead.
7. The method according to claim 6 , wherein the control of the transmission of the data packets of the inbound data communications comprises controlling an effective bit rate of the data packets transmitted from the second network site to the first network site via the VPN tunnel.
The rate control described in previous claims shapes traffic by adjusting the effective bit rate of data flowing from the remote server through the VPN tunnel to the local network. It does this by adapting its sending rate based on the data limits received, ensuring it doesn't exceed the allocated bandwidth.
8. The method according to claim 1 , further comprising: determining one or more reception characteristics of the first node device with respect to the inbound data communications, wherein at least one of the one or more inbound link throughput limits is/are determined based on at least one of the one or more reception characteristics of the first node device.
The method includes analyzing the receiving endpoint's data reception capabilities. The local endpoint checks its buffer size or processing speed. The optimized data limits sent to the remote server are influenced by these receiver-side characteristics. This makes the system more adaptive to varying local network conditions.
9. The method according to claim 8 , wherein the one or more inbound protocol overhead factors include one or more of a wide area network (WAN) protocol type and an asynchronous transfer mode (ATM) encapsulation mode configured on the first node device for the receipt of the inbound data communications via the first link, and the reception characteristics include a downlink speed for the receipt if the inbound data communications by the first node device.
The overhead calculation includes analyzing WAN protocol type and ATM encapsulation on the receiving device. The endpoint also determines its downlink speed. These factors together inform the calculation of data limits. The reception characteristics include a downlink speed for the receipt of the inbound data communications by the first node device.
10. The method according to claim 9 , wherein the data packets of the inbound data communications are secured via a virtual private network (VPN) tunnel between the first network site and the second network site, wherein the series of links of the data communications path carry the data packets of the VPN tunnel, and wherein the transmission of the inbound link throughput limits to the second network site occurs via the VPN tunnel.
This method uses a VPN for secure data transfer between a remote server and a local network. All data is sent through a VPN tunnel, and the optimized data limits are also transferred using that same tunnel. The path carries the data packets of the VPN tunnel, and the transmission of the inbound link throughput limits to the second network site occurs via the VPN tunnel.
11. The method according to claim 10 , wherein the VPN tunnel is based on Internet protocol security (IPSEC) protocol, and the one or more inbound protocol overhead factors include IPSEC encapsulation.
The VPN described uses IPSEC protocol. Protocol overhead calculations include overhead from IPSEC encapsulation. The data limits are influenced by the overhead of IPSEC.
12. The method according to claim 1 , wherein at least one of the one or more inbound link throughput limits include(s) one or more of a path maximum transmission unit (MTU) and a maximum segment size (MSS).
The optimized data limits can include Path Maximum Transmission Unit (MTU) and Maximum Segment Size (MSS). These values help prevent packet fragmentation and optimize packet sizes for efficient network transmission. This enables fine-grained control over network traffic characteristics.
13. An apparatus operable for managing transmission characteristics for inbound data communications received by a first network site from a remote second network site via a data communications path over a wide area data communications network, the apparatus comprising: a receiver operable to receive the inbound data communications; a processor operable to determine one or more inbound protocol overhead factors based on overhead associated with one or more network protocols applied to the inbound data communications over at least a first link of the data communications path, wherein the data communications path consists of a series of links through the wide area data communications network, wherein the first link is between the apparatus serving as an entry point of the first network site and a second node device serving as an exit point from a public portion of the wide area data communications network and located remotely from the first network site and from the second network site, wherein the inbound data communications are received by the apparatus via the first link, and wherein the processor is further operable to determine one or more inbound link throughput limits configured to control throughput of data packets of the inbound data communications over at least the first link, wherein at least one of the one or more inbound link throughput limits is/are determined based on at least one of the one or more inbound protocol overhead factors; and a transmitter operable to transmit the one or more inbound link throughput limits to the second network site for application to transmission of the data packets of the inbound data communications from the second network site.
A network device optimizes data transfer between a remote server and a local network. The device's receiver gets inbound data. A processor calculates protocol overhead on the data path's initial connection. The data path consists of a series of links through the WAN. It determines data limits based on protocol overhead, including the first hop out of the public internet to the destination network. The device's transmitter then sends these optimized data limits back to the remote server.
14. The apparatus according to claim 13 , wherein the data packets of the inbound data communications are secured via a virtual private network (VPN) tunnel between the first network site and the second network site, wherein the series of links of the data communications path carry the data packets of the VPN tunnel, and wherein the transmission of the inbound link throughput limits to the second network site occurs via the VPN tunnel.
The device from the previous claim adds VPN security between the remote server and local network. All data packets are sent via a VPN tunnel. The optimized data limits calculated are sent to the remote server using that same secure VPN tunnel. This ensures that the quality of service settings are transmitted securely along with the protected data.
15. The apparatus according to claim 14 , wherein the VPN tunnel is based on Internet protocol security (IPSEC) protocol, and the one or more inbound protocol overhead factors include IPSEC encapsulation.
In the VPN setup described previously, the VPN uses IPSEC protocol. The overhead calculation now includes IPSEC encapsulation. The device calculates the extra overhead introduced by IPSEC and adjusts the data limits accordingly, then transmits the updated limits via the IPSEC tunnel.
16. The apparatus according to claim 13 , wherein the processor if further operable to determine one or more reception characteristics of the apparatus with respect to the inbound data communications, wherein at least one of the one or more inbound link throughput limits is/are determined based on at least one of the one or more reception characteristics of the apparatus.
The device analyzes its data reception capabilities. The device checks its buffer size or processing speed. The optimized data limits sent to the remote server are influenced by these receiver-side characteristics. This makes the system more adaptive to varying local network conditions.
17. The apparatus according to claim 16 , wherein the one or more inbound protocol overhead factors include one or more of a wide area network (WAN) protocol type and an asynchronous transfer mode (ATM) encapsulation mode configured on the apparatus for the receipt of the inbound data communications via the first link, and the reception characteristics include a downlink speed for the receipt if the inbound data communications by the apparatus.
The device's overhead calculation includes analyzing WAN protocol type and ATM encapsulation. The device also determines its downlink speed. These factors inform the calculation of data limits. The reception characteristics include a downlink speed for the receipt of the inbound data communications by the apparatus.
18. The apparatus according to claim 17 , wherein the data packets of the inbound data communications are secured via a virtual private network (VPN) tunnel between the first network site and the second network site, wherein the series of links of the data communications path carry the data packets of the VPN tunnel, and wherein the transmission of the inbound link throughput limits to the second network site occurs via the VPN tunnel.
This device uses a VPN for secure data transfer between a remote server and a local network. All data is sent through a VPN tunnel, and the optimized data limits are also transferred using that same tunnel.
19. The apparatus according to claim 18 , wherein the VPN tunnel is based on Internet protocol security (IPSEC) protocol, and the one or more inbound protocol overhead factors include IPSEC encapsulation.
The VPN used by the device relies on IPSEC protocol. Protocol overhead calculations include overhead from IPSEC encapsulation. The data limits are influenced by the overhead of IPSEC.
20. The apparatus according to claim 13 , wherein at least one of the one or more inbound link throughput limits include(s) one or more of a path maximum transmission unit (MTU) and a maximum segment size (MSS).
The optimized data limits on the device can include Path MTU and MSS. These values help prevent packet fragmentation and optimize packet sizes for efficient network transmission. This enables fine-grained control over network traffic characteristics.
Unknown
November 28, 2017
Browse 5M+ US patents with plain-English claim translations and AI-generated analysis.